Alternatives and similar repositories for aardwolfgui:

Users that are interested in aardwolfgui are comparing it to the libraries listed below

• eladshamir / BadWindowsService
  An insecurely implemented and installed Windows service for emulating elevation of privileges vulnerabilities
  ☆58Updated 2 years ago
• netwrix / server-untrust-account
  A technique for Active Directory domain persistence
  ☆39Updated last year
• netero1010 / Quser-BOF
  Cobalt Strike BOF for quser.exe implementation using Windows API
  ☆86Updated 2 years ago
• latortuga71 / SharpChisel-NG
  ☆36Updated last year
• tmenochet / PowerExec
  Offensive tool for fileless lateral movement on Windows networks
  ☆25Updated last year
• An00bRektn / gopher47
  A third-party Gopher Assassin for the Havoc Framework.
  ☆44Updated last year
• improsec / CaddyStager
  ☆38Updated 2 years ago
• klezVirus / SharpLdapRelayScan
  C# Port of LdapRelayScan
  ☆83Updated 3 years ago
• CCob / ProvisionAppx
  ☆39Updated 2 years ago
• xpn / WAMBam
  Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post
  ☆124Updated 2 years ago
• C0axx / Modified-Thycotic-Secret-Stealer
  Modified-Thycotic-Secret-Stealer for use with DPAPI and offline Decryption
  ☆19Updated 2 years ago
• rasta-mouse / ExternalC2.NET
  .NET implementation of Cobalt Strike's External C2 Spec
  ☆86Updated 3 years ago
• decoder-it / NewMachineAccount
  ☆34Updated 2 months ago
• mobdk / Upsilon
  Upsilon execute shellcode with syscalls - no API like NtProtectVirtualMemory is used
  ☆93Updated 3 years ago
• xforcered / AdvSim.Cryptography
  Simple and sane cryptographic wrapper library.
  ☆27Updated 2 years ago
• CodeXTF2 / PyHmmm
  Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …
  ☆80Updated last year
• Cobalt-Strike / unhook-bof
  Remove API hooks from a Beacon process.
  ☆57Updated 3 years ago
• thalpius / Microsoft-Defender-for-Identity-Encrypted-Password
  ☆36Updated 11 months ago
• MythicC2Profiles / http
  Simple HTTP async comms using standard GET/POST requests
  ☆33Updated last month
• EspressoCake / BOF_Development_Docker
  A VSCode devcontainer for development of COFF files with batteries included.
  ☆49Updated last year
• X-C3LL / SharpNTLMRawUnHide
  C# version of NTLMRawUnHide
  ☆72Updated 2 years ago
• EspressoCake / Process_Protection_Level_BOF
  ☆58Updated 3 years ago
• netbiosX / GhostLoader
  GhostLoader - AppDomainManager - Injection - 攻壳机动队
  ☆52Updated 4 years ago
• EspressoCake / Firewall_Walker_BOF
  A BOF to interact with COM objects associated with the Windows software firewall.
  ☆103Updated 3 years ago
• p0dalirius / pydsinternals
  A Python native library containing necessary classes, functions and structures to interact with Windows Active Directory.
  ☆61Updated 2 months ago
• clod81 / shellcode_runner_copy_in_chunk
  C# loader that copies a chunk at the time of the shellcode in memory, rather that all at once
  ☆23Updated 2 years ago
• mgeeky / msi-shenanigans
  Proof of Concept code and samples presenting emerging threat of MSI installer files.
  ☆81Updated 2 years ago
• jfmaes / DeepSleep
  all credits go to @mgeeky
  ☆64Updated 3 years ago
• snovvcrash / RemoteRegSave
  A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host
  ☆39Updated last year
• thefLink / Hunt-Weird-ImageLoads
  Small tool to play with IOCs caused by Imageload events
  ☆42Updated last year